瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » streng扫描的结果字数太大,可惜没发多少就被病毒篡改了
cqqyyy - 2008-6-21 22:23:00
==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
进程特权扫描
特殊特权被允许: SeLoadDriverPrivilege [PID = 1984, C:\WINDOWS\SYSTEM32\NVSVC32.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 1652, C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1652, C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 612, C:\WINDOWS\MSAGENT\AGENTSVR.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 612, C:\WINDOWS\MSAGENT\AGENTSVR.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 3668, C:\PROGRAM FILES\RISING\ANTISPYWARE\RAS.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3668, C:\PROGRAM FILES\RISING\ANTISPYWARE\RAS.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 2284, C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\PROGRAM\THUNDER5.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2284, C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\PROGRAM\THUNDER5.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 2396, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2396, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]

==================================

用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) )
超级游戏迷 - 2008-6-21 22:41:00
阅读版规先http://bbs.ikaka.com/showtopic-8417665.aspx

日志用附件方式发
1
查看完整版本: streng扫描的结果字数太大,可惜没发多少就被病毒篡改了
© 2000 - 2026 Rising Corp. Ltd.